To prepare your Azure Active Directory for eformity.net follow the steps below:

1. Create an 'Enterprise application', and select 'Non-gallery application':
   
2. After you have created the application you can select 'Users and groups' on the left side. Authorize all users\groups who you grant access to eformity.net.
3. When all users\groups have been assigned click 'Single sign-on' and select 'SAML'. This will make different options available:
   1. Basic SAML Configuration
      At 'Identifier' and 'Reply URL' type the same url: https://<yoursubscription>.eformity.net/saml/signin
      
   2. User Attributes & Claims
      Some claims are already prefiled. Definied any additional claims if needed:
      
      Tick 'Add new claim' and add the claim below:
      

      Name	Namespace	Attribute
      CommonName	http://schemas.xmlsoap.org/claims	user.displayname

      Tick 'Add a group claim' and add the next claims as below:
      
      The result should look like:
      
      
   3. SAML Signing Certificate
      Download the certificate as Base64 and sent this to your contactperson at eformity together with the 'Logon URL' (in the fourth block).
4. After receiving this we activate your SSO.

Referent

https://learn.microsoft.com/nl-nl/azure/active-directory/develop/saml-claims-customization

https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/technical-reference/the-role-of-claims